From df5b054306203b3897f61b8235b4aaee9b027b28 Mon Sep 17 00:00:00 2001 From: moT01 <20648924+moT01@users.noreply.github.com> Date: Tue, 22 Sep 2020 14:48:08 -0500 Subject: [PATCH 1/2] fix: remove helmet user stories --- views/index.html | 1 - 1 file changed, 1 deletion(-) diff --git a/views/index.html b/views/index.html index 2071269..b49fc66 100644 --- a/views/index.html +++ b/views/index.html @@ -17,7 +17,6 @@

User Stories

    -
  1. Prevent cross site scripting(XSS attack).
  2. I can POST /api/issues/{projectname} with form data containing required issue_title, issue_text, created_by, and optional assigned_to and status_text.
  3. The object saved (and returned) will include all of those fields (blank for optional no input) and also include created_on(date/time), updated_on(date/time), open(boolean, true for open, false for closed), and _id.
  4. I can PUT /api/issues/{projectname} with a _id and any fields in the object with a value to object said object. Returned will be 'successfully updated' or 'could not update '+_id. This should always update updated_on. If no fields are sent return 'no updated field sent'.
    5. From d96c87fade71221e1017b056340679235b696721 Mon Sep 17 00:00:00 2001 From: moT01 <20648924+moT01@users.noreply.github.com> Date: Tue, 22 Sep 2020 15:28:53 -0500 Subject: [PATCH 2/2] fix: remove security line from readme --- README.md | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/README.md b/README.md index bae9744..8cb372e 100644 --- a/README.md +++ b/README.md @@ -5,7 +5,6 @@ Project Issue Tracker 1) SET NODE_ENV to `test` without quotes and set DB to your mongo connection string in .env file 2) Complete the project in `routes/api.js` or by creating a handler/controller -3) You will add any security features to `server.js` -4) You will create all of the functional tests in `tests/2_functional-tests.js` +3) You will create all of the functional tests in `tests/2_functional-tests.js`